The BlackCat ransomware criminal group, also known as ALPHV, hacked into Reddit servers earlier this year, as confirmed by Reddit in February. The attackers gained access to internal documents, codes, dashboards, and business systems, but there was no evidence of a breach in production systems or user accounts.
A recent posting on the BlackCat leak site reveals their demands: $4.5 million and the scrapping of API pricing changes, or they will publish 80GB of stolen data. Dominic Alvieri, a cybersecurity analyst, shared a screenshot of the demands from the BlackCat/ALPHV group's leak site.
As of now, the CEO of Reddit has not given any statement regarding this incident. It is still unclear if the hacker group had access to user accounts. Reddit has stated that usernames and passwords are stored in a salted hashed format, making it difficult for hackers to crack.
On April 13 and June 16, the group contacted Reddit, demanding $4.5 million for the deletion of the data and threatening to make the extortion details public. BlackCat now wants the ransom and the scrapping of API changes.
BlackCat may be seeking media attention and public support with its actions. There is a significant number of individuals showing support for the hacker group.
If the BlackCat group follows through on its threat, the release of the stolen data could result in a major breach comparable to high-profile incidents such as the Sony hack or the Edward Snowden leaks.
The incident serves as a reminder of the ongoing threat posed by cybercriminals and the importance of robust cybersecurity measures. Safeguarding user data and maintaining constant vigilance are crucial in preventing such breaches.
0 Comments